| Max CVSS | 5.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-3519 | 5.0 |
routerlist.c in Tor before 0.2.2.38 uses a different amount of time for relay-list iteration depending on which relay is chosen, which might allow remote attackers to obtain sensitive information about relay selection via a timing side-channel attack
|
22-08-2013 - 03:56 | 26-08-2012 - 03:17 | |
| CVE-2012-3518 | 5.0 |
The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted
|
22-08-2013 - 03:56 | 26-08-2012 - 03:17 | |
| CVE-2012-3517 | 5.0 |
Use-after-free vulnerability in dns.c in Tor before 0.2.2.38 might allow remote attackers to cause a denial of service (daemon crash) via vectors related to failed DNS requests.
|
22-08-2013 - 03:56 | 26-08-2012 - 03:17 |